B.Sc (Hons), C.Eng, CISM, SCF, MIET, MSAIEE
Steve Jump has an unashamedly technical background being both an engineering graduate and a chartered engineer, but he uses it to translate complex technology into serious business. He presently consults in the area of Information Security Governance and Information Security Risk, where he expresses support, sympathy, incredulity and fortunately, frequent flashes of inspiration at the state of Information Security risk management in business today.
With over twenty years of practical and strategic information and cyber security experience Steve now provides applied cyber security risk governance coaching, mentoring, and guidance at an Exco, Board and ISO level to ensure that non-technical and technical directors alike are able to understand that information security risk is about business success more than technology, and how this understanding adds significantly more value to a business as an enabler than a fear based approach.
Steve has driven the establishment of a Security Governance function recognisable to Risk Management, and successfully transitioned IT security functions into managed security enablers for business. He is conversant in the translation of new technologies, new regulatory requirements and new business models into the means to improve governance, reduce costs, and measurably reduce information security risk to businesses and their customers.
Steve has developed comprehensive Information Security and Information Technology Strategies , including Enterprise & Information Security Architectures that ensure business and IT align, including the creation of a business centric Information Security framework that can be used at any level of an organisation to identify threats and plan their security strategy and resources.
Steve provides both coaching and mentorship at all levels, from CIO’s forming a security team to postgraduate specialists joining that team. He frequently talks around security governance and has presented both simple and complex papers and keynotes around cyber security and risk management topics internationally.